adf44ce6997c9d0c6d5699bc8d95789e4af6c68d6297e15d4ad83a2ef9f32324

Sharing

Copy URL Twitter E-mail

General

Target

adf44ce6997c9d0c6d5699bc8d95789e4af6c68d6297e15d4ad83a2ef9f32324
Size

1.0MB
MD5

d561e2d3d988b6a6c79212c71494b81b
SHA1

c0f5d1a405da6e50b61840e8870d2c9dc7999d16
SHA256

adf44ce6997c9d0c6d5699bc8d95789e4af6c68d6297e15d4ad83a2ef9f32324
SHA512

c0e3f5bf9623af2ad74895e56efc0c0ac3b27fbd18b54e37f5228ee42fdd8e79b8c90a0176f2374a03330e826c8c6189ea1f7a3ba7536554d0b49952819ef3c2
SSDEEP

24576:oljWgW2WidQZefBb4u6qxazdQZpWgW2W:oJWgW2WidQZs4gYdQZpWgW2W

Score

7^/10

vmprotect

Malware Config

Signatures

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

resource	yara_rule
sample	vmprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adf44ce6997c9d0c6d5699bc8d95789e4af6c68d6297e15d4ad83a2ef9f32324

Files

adf44ce6997c9d0c6d5699bc8d95789e4af6c68d6297e15d4ad83a2ef9f32324
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.!rc!
Size: 251KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 102KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: 261KB - Virtual size: 15.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.WEN
Size: 512B - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ROU
Size: 59KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Silvana
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 258KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 77KB - Virtual size: 80KB

.rdata Size: 20KB - Virtual size: 20KB

.data Size: 6KB - Virtual size: 8KB

.!rc! Size: 251KB - Virtual size: 252KB

.vmp0 Size: 102KB - Virtual size: 104KB

.vmp1 Size: 261KB - Virtual size: 15.2MB

.WEN Size: 512B - Virtual size: 2.1MB

.ROU Size: 59KB - Virtual size: 92KB

.Silvana Size: 512B - Virtual size: 4KB

.rsrc Size: 258KB - Virtual size: 260KB

.text
Size: 77KB - Virtual size: 80KB

.rdata
Size: 20KB - Virtual size: 20KB

.data
Size: 6KB - Virtual size: 8KB

.!rc!
Size: 251KB - Virtual size: 252KB

.vmp0
Size: 102KB - Virtual size: 104KB

.vmp1
Size: 261KB - Virtual size: 15.2MB

.WEN
Size: 512B - Virtual size: 2.1MB

.ROU
Size: 59KB - Virtual size: 92KB

.Silvana
Size: 512B - Virtual size: 4KB

.rsrc
Size: 258KB - Virtual size: 260KB